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Question: 1 


A(n) is a one-way mathematical function that maps variable values into smaller 
values of a fixed length. 


A. Symmetric key 
B. Algorithm 

C. Back door 

D. Hash function 
E. Integrity 


Answer: D 


Question: 2 


INFOSEC professionals are concerned about providing due care and due diligence. With whom 
should they consult, when protecting information assets? 


A. Law enforcement in their region 

B. Senior management, particularly business-unit owners 
C. IETF enforcement officials 

D. Other INFOSEC professionals 

E. Their organizations’ legal experts 


Answer: E 


Question: 3 


How do virtual corporations maintain confidentiality? 


A. Encryption 

B. Checksum 

C. Data hashes 

D. Redundant servers 
E. Security by obscurity 


Answer: A 


Question: 4 


All of the following are possible configurations for a corporate intranet, EXCEPT: 


A. Value-added network 
B. Wide-area network 
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C. Campus-area network 
D. Metropolitan-area network 
E. Local-area network 


Question: 5 
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Answer: A 


Which of the following is NOT an auditing function that should be performed regularly? 


A. Reviewing IDS alerts 

B. Reviewing performance logs 
C. Reviewing IDS logs 

D. Reviewing audit logs 

E. Reviewing system logs 


Question: 6 


The items listed below are examples of 
*Procedures and policies 

*Employee security-awareness training 
*Employee background checks 

*Increasing management security awareness 


A. Technical 

B. Administrative 
C. Role-based 

D. Mandatory 

E. Physical 


Question: 7 


Digital signatures are typically provided by a 
key's authenticity. 


A. Network firewall 

B. Security administrator 
C. Domain controller 

D. Certificate Authority 
E. Hash function 


Answer: B 


controls. 


Answer: B 


, where a third party verifies a 


Answer: D 
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Question: 8 


Which of the following is MOST likely to cause management to view a security-needs proposal as 
invalid? 


A. Real-world examples 
B. Exaggeration 

C. Ranked threats 

D. Quantified risks 

E. Temperate manner 


Answer: B 


Question: 9 


What is mandatory sign-on? An authentication method that: 


A. uses smart cards, hardware tokens, and biometrics to authenticate users; also known as 
threefactor authentication 

B. requires the use of one-time passwords, so users authenticate only once, with a given set of 
credentials 

C. requires users to re-authenticate at each server and access control 

D. stores user credentials locally, so that users need only authenticate the first time a local machine is 
used 

E. allows users to authenticate once, and then uses tokens or other credentials to manage 
subsequent authentication attempts 


Answer: C 


Question: 10 


One individual is selected from each department, to attend a security-awareness course. Each person 
returns to his department, delivering the course to the remainder of the department. After training 
is complete, each person acts as a peer coach. Which type of training is this? 


A. On-line training 

B. Formal classroom training 

C. Train-the-mentor training 

D. Alternating-facilitator training 
E. Self-paced training 


Answer: C 
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